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The Internet is a collection of networks originally paid for by the U.S. Department of 
Defense. Its purpose was to provide a communications infrastructure more resilient to 
attack than the public communications channels in the event of war. When research 
became a priority in the 1960s and' 1970s, money was given to the National Science 
Foundation, which became the de facto administrator of the network. The NSF ran the 
primary arteries of the Internet until the late 1980s. A substantial amount of ... 
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Danai Patiyoot, S. J. Shepherd 

April 1999 ACM SIGOPS Operating Systems Review, volume 33 issue 2 
Publisher: ACM Press 
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This paper deals with security techniques for wireless Networks. The work presented is 
based on a review of literature regarding current and future wireless security networks 
systems. The aspects discussed in this paper included the choices of cryptographic 
algorithms such as protocols for key management and authentication. Various conclusions 
are drawn from existing security networks and proposed in new wireless ATM network 
security. Also a proposal for future research into security techniques ... 
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Public-key cryptography and password protocols 
Shai Halevi, Hugo Krawczyk 

August 1999 ACM Transactions on Information and System Security (TISSEC), volume 2 

Issue 3 
Publisher: ACM Press 

Additional Information: full citation, abstract, references, citings, index 
terms , review 

We study protocols for strong authentication and key exchange in asymmetric scenarios 
where the authentication server possesses ~a pair of private and public keys while the 
client has only a weak human-memorizable password as its authentication key. We 
present and analyze several simple password authentication protocols in this scenario, 
and show that the security of these protocols can be formally proven based on standard 
cryptographic assumptions. Remarkably, our analysis shows optimal re ... 
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passwords, public-key protocols 
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This paper introduces ID-based secret-key cryptography, in which secret keys are 
privately and uniquely binded to an identity. This enables to extend public-key 
cryptography features at the high throughput rate of secret-key cryptography. As 
applications, efficient login protocols, an enhanced version of Kerberos, and an ID-based 
MAC algorithm are presented. ID-based systems were initially developed in the context of 
public-key cryptography by removing the need of explicit public keys. The ... 

Keywords: ID-based systems, Kerberos, MACs, authentication protocols, one-time 
passwords, secret-key cryptography 
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ComButer security: Proxy -based secur i t y p rotocol s i n networked mob i le devices 
M. Burnside, D. Clarke, T. Mills, A. Maywah, S. Devadas, R. Rivest 

March 2002 Proceedings of the 2002 ACM symposium on Applied computing SAC '02 

Publisher: ACM Press 

Full text available* 1SJ pdf(7_65 09 KB) Add ' tiona ' Information: full citation , abstract , references , citings, index 

"~ terms 

We describe a resource discovery and communication system designed for security and 
privacy. All objects in the system, e.g., appliances, wearable gadgets, software agents, 
and users have associated trusted software proxies that either run on the appliance 
hardware or on a trusted computer. We describe how security and privacy are enforced 
using two separate protocols: a protocol for secure device-to- proxy communication, and a 
protocol for secure proxy-to-proxy communication. Using two separate ... 

Keywords: authorization, certificate, certificate chain, certificate chain discovery, mobile 
device, pervasive, protocol, proxy, security, ubiquitous, wireless 



Security & transport: Mobility helps security in ad hoc networks 
Srdjan Capkun, Jean-Pierre Hubaux, Levente Buttyan 

June 2003 Proceedings of the 4th ACM international symposium on Mobile ad hoc 
networking & computing MobiHoc '03 

Publisher: ACM Press 

Full text available* ff!| pdf(228 73 KB) Add '^ ona l Information: full citation, abstract, references, citings, Index 
Lj ter ms 

Contrary to the common belief that mobility makes security more difficult to achieve, we 
show that node mobility can, in fact, be useful to provide security in ad hoc networks. We 
propose a technique in which security associations between nodes are established, when 
they are in the vicinity of each other, by exchanging appropriate cryptographic material. 
We show that this technique is generic, by explaining its application to fully self-organized 
ad hoc networks and to ad hoc networks placed und ... 
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Un linkable se ri a l tr an sactions: protocols and a pplications 
Stuart G. Stubblebine, Paul F. Syverson, David M. Goldschlag 

November 1999 ACM Transactions on Information and System Security (TISSEC), 

Volume 2 Issue 4 

Publisher: ACM Press 

Full text available: fHI pdfd 84.87 KB) Additiona ' Information: full citation, abstract, references, citings, index 

terms, review 

We present a protocol for unlinkable serial transactions suitable for a variety of network- 
based subscription services. It is the first protocol to use cryptographic blinding to enable 
subscription services. The protocol prevents the service from tracking the behavior of its 
customers, while protecting the service vendor from abuse due to simultaneous or cloned 
use by a single subscriber. Our basic protocol structure and recovery protocol are robust 
against failure in protocol termination. ... 

Keywords: anoymity, blinding, cryptographic protocols, unlinkable serial transactions 



9 Verifying security protoco l s as planning in logic programming 
Luigia Carlucci Aiello, Fabio Massacci 

October 2001 ACM Transactions on Computational Logic (TOCL), volume 2 issue 4 
Publisher: ACM Press 

Full text available- pdf(305 94 KB) Additional Information: full citation, abstract, references, citings, index 
^ ™ terms, review 

We illustrate ALSP (Action Language for Security Protocol), a declarative executable 
specification language for planning attacks to security protocols. ALSP is based on logic 
programming with negation as failure, and with stable model semantics. In ALSP we can 
give a declarative specification of a protocol with the natural semantics of send and 
receive actions which can be performed in parallel. By viewing a protocol trace as a plan 
to a . . . 

Keywords: AI planning, logic programming, security protocols, specification language 



Internet security standards: past, present, and future 
Stephen Kent 

June 1994 StandardView volume 2 issue 2 
Publisher: ACM Press 
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1 1 Security protocol for IEEE 80 2. 1 1 wireless local area network 
Se Hyun Park, Aura Ganz, Zvi Ganz 

September 1998 Mobile Networks and Applications, Volume 3 Issue 3 
Publisher: Kluwer Academic Publishers 

Full text available* fl!| pdf (263 66 KB) Additional Information: full citation , abstract , references , citings, index 
~ ~ terms , review 

As Wireless Local Area Networks (WLANs) are rapidly deployed to expand the field of 
wireless products, the provision of authentication and privacy of the information transfer 
will be mandatory. These functions need to take into account the inherent limitations of 
the WLAN medium such as limited bandwidth, noisy wireless channel and limited 
computational power. Moreover, some of the IEEE 802.11 WLAN characteristics such as 
the use of a point coordinator and the polling based Point Coordinati ... 
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^ A security arc hi t ecture for fault-tolerant systems 

Michael K. Reiter, Kenneth P. Birman, Robbert van Renesse 

November 1994 ACM Transactions on Computer Systems (TOCS), volume 12 issue 4 
Publisher: ACM Press 

Full text available* Wl pdf(2 50 MB) Additional Information: full citation, abstract, references, citings, index 
l£j * terms, review 

Process groups are a common abstraction for fault-tolerant computing in distributed 
systems. We present a security architecture that extends the process group into a 
security abstraction. Integral parts of this architecture are services that securely and fault 
tolerantly support cryptographic key distribution. Using replication only when necessary, 
and introducing novel replication techniques when it was necessary, we have constructed 
these services both to be easily defensible against atta ... 

Keywords: key distribution, multicast, process groups 
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November 1998 Proceedings of the 5th ACM conference on Computer and 
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Publisher: ACM Press 

Full text available: ^| pdfCl,28 .MB) Additional Information: f ul l citat i o n, references, citings, index terms 



14 NTP retrospectiv e : A brief hi st ory of NTP time: memoirs of an Internet timekee p er Q 

David L. Mills 

April 2003 ACM SIGCOMM Computer Communication Review, Volume 33 issue 2 
Publisher: ACM Press 

Full text available: ^| pdf (185,93 KB) Additional Information: full citation, abstract, references, citings 

This paper traces the origins and evolution of the Network Time Protocol (NTP) over two 
decades of continuous operation. The technology has been continuously improved from 
hundreds of milliseconds in the rowdy Internet of the early 1980s to tens of nanoseconds 
in the Internet of the new century. It includes a blend of history lessons, technology 
milestones and series of experiments that shape, define and record the early history of 
the Internet and NTP. This narrative is decidedly personal, since ... 

Keywords: algorithmic memoirs, computer network, technical history, time 
synchronization 
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Publisher: ACM Press 
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1 6 Identificatio n control: S ec u r e obj ect identification: or: solvi ng the C hess Grandmaster Q 
Problem 

Ammar Alkassar, Christian Stuble, Ahmad-Reza Sadeghi 

August 2003 Proceedings of the 2003 workshop on New security paradigms NSPW 
'03 

Publisher: ACM Press 

Full text available: ^| pdf(78 2.85 KB) Additional Information: full citation, abstract, references 

Many applications of cryptographic identification protocols are vulnerable against physical 
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adversaries who perform real time attacks. For instance, when identifying a physical 
object like an automated teller machine, common identification schemes can be bypassed 
by faithfully relaying all messages between the communicating participants. This attack is 
known as mafia fraud. The Probabilistic Channel Hopping (PCH) system we introduce in 
this paper, solves this problem by hiding the conversa ... 

Keywords: Chessmaster Problem, fake equipment, identification, mafia fraud 
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November 1999 ACM Transactions on Information and System Security (TISSEC), 

Volume 2 Issue 4 
Publisher: ACM Press 

Full text available- Wi pdf (1 83 73 KB) Additional Information: full citation , abstract , references , citings, index 
" " ' r " terms, review 

We study the vulnerability of two implementations of the Data Encryption Standard (DES) 
cryptosystem under a timing attack. A timing attack is a method, recently proposed by 
Paul Kocher, that is designed to break cryptographic systems. It exploits the engineering 
aspects involved in the implementation of cryptosystems and might succeed even against 
cryptosys-tems that remain impervious to sophisticated cryptanalytic techniques. A timing 
attack is, essentially, a way of obtaining some users ... 

Keywords: cryptanalysis, cryptography, data encryption standard, timing attack 
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^ Anish Mathuria 

October 1998 ACM SIGCOMM Computer Communication Review, volume 28 issue 5 
Publisher: ACM Press 

Full text available: ^ pdf(532.0 6 KB ) Additional Information: full citation, abstract, index terms 

An important requirement in designing protocols for key establishment is to provide 
assurance to protocol participants that a session key is fresh. This paper compares lower 
bounds on messages and rounds for two classes of protocols based on fundamentally 
different methods for achieving session key freshness. 
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